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(54) Synchronizing over a number of synchronization mechanisms using flexible rules 



(57) Two computer systems in a network each have 
a local store that contains a copy of a data item that is 
to be synchronized. One of the computer systems may 
be, for example, a mobile device while the other may be 
a synchronization server. In order to determine whether 
to synchronize a data item, and what synchronization 
mechanism to use, one of the computer systems refer- 



ences a flexible set of rules that may be influenced by 
instructions from a network administrator or a mobile de- 
vice user. The flexible set of rules takes into considera- 
tion the value of the data, the cost associated with syn- 
chronization, the security of the synchronization mech- 
anisms, the security of the mobile device, as well as the 
location of the mobile user in dictating whether and how 
to synchronize. 
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Description 

BACKGROUND OF THE INVENTION 

1 . The Field of the Invention 

[0001 ] The present invention relates to computer net- 
work operations. In particular, the present invention re- 
lates to methods, systems, and computer program prod- 
ucts for synchronizing by flexibly using multiple synchro- 
nization mechanisms while considering the then-exist- 
ing economic and/or security considerations involved 
with synchronization over a particular mechanism to a 
particular device. 

2. Background and Relevant Art 

[0002] Computer networks allow more individuals 
more ready access to more information than ever be- 
fore. The Internet is a conglomerate of interconnected 
computer networks that spreads far and wide through- 
out the world. An individual need only have an Internet- 
enabled computer (or device) and an Internet connec- 
tion to be able to access information from across the 
globe. 

[0003] Mobile devices such as mobile telephones, 
Personal Digital Assistants (PDAs) and laptop comput- 
ers also may have the ability to access various objects 
(e.g., documents) for particular remote network loca- 
tions. However, accessing documents over a network 
may be quite time consuming and costly and thus re- 
mote access may be unacceptable in many applica- 
tions. Accordingly, with the memory capabilities of mo- 
bile devices increasing, many mobile devices have 
caching mechanisms that allow them to locally store 
synchronized copies of more relevant objects that are 
also stored in another network location. 
[0004] Synchronization ensures that the copy of a 
document on the mobile device is an identical replica of 
a remote copy of the document. After synchronization, 
however, changes may be made to both of the remote 
copy or the local copy. Accordingly, the local and remote 
copies may become quite different after some time. 
However, the copies are once again made identical dur- 
ing the next synchronization. 

[0005] Conventional synchronization mechanisms 
give the user very little control over synchronization. Ba- 
sically, the user just selects items to synchronize and 
selects a single synchronization mechanism to use. This 
rigid approach ignores some factors that are relevant to 
whether, when, and how to synchronize. 
[0006] For example, some data is more valuable than 
others. Yet, the conventional technique does not con- 
sider the value of the data once the items for synchro- 
nization are selected. For example, a user may select 
to synchronize an in-box. However, the in-box contains 
high-value e-mails (such as an e-mail offering a highly 
coveted job) as well as low value e-mails (such as un- 



wanted spam). Yet, all of the e-mails are synchronized 
in the exact same manner. 

[0007] Also current synchronization mechanisms do 
not consider the costs associated with synchronization. 

5 For example, synchronization mechanisms may involve 
networks with a wide variety of costs and latencies. For 
example, synchronization over an analog dialup that us- 
es a Global System for Mobile communication (GSM) 
network has a relatively low bandwidth of approximately 

10 9.6 to 14.4 kilobits per second. A connection over a Gen- 
eral Packet Radio Server (GPRS) network allows some- 
what faster throughput speeds of up to 115 kilobits per 
second. However, current GPRS networks are relatively 
expensive. A connection over an 802.11b (also called 

15 "WiFi") wireless network can attain speeds of up to 11 
megabits per second, orders of magnitude greater than 
GSM or GPRS. In addition, use of 802.11b networks is 
typically free to those who have access to the network. 
However, 802.11b networks are typically less available 

20 as they currently span much less of the globe than do 
GSM or GPRS networks. 

[0008] Current synchronization techniques also typi- 
cally do not consider security concerns associated with 
synchronization. For example, the channel usedfor syn- 

25 chronization may have various levels of inherent secu- 
rity that guard against eavesdropping. For example, 
physical network connections are very secure, 802.11b 
networks are somewhat secure, with GSM dialup net- 
works being somewhat less secure, and with GPRS net- 

30 works being less secure. Also, the devices to which data 
may be synchronized may have varying levels of secu- 
rity. For example, some devices give access to any lo- 
cally stored document to anyone who happens to pos- 
sess the device, even if that person just stole the device 

35 from the legitimate user. Other devices are more secure 
by requiring a password when first logging in. Others 
are even more secure by having the screen saver turn 
on after a short period of lack of use, and require a pass- 
word to restore the device once the screen saver is on. 

40 Others are yet even more secure by having an encrypt- 
ed file system. 

[0009] Accordingly, what is desired as mechanisms 
that use a synchronization mechanism that is appropri- 
ate given the economic and security concerns that exist 
45 at the time of the synchronization. 

BRIEF SUMMARY OF THE INVENTION 

[0010] The principles of the present invention provide 
50 for systems, methods and computer program products 
for performing synchronization in a flexible manner. In- 
stead of just allowing the user a choice as to what to 
synchronize and then having the user manually syn- 
chronize, one or more of the pair of computer systems 
55 involved with the synchronization automatically consid- 
ers the then-existing circumstances to determine wheth- 
er, when and how to synchronize. In one described ex- 
ample, the synchronization occurs between a mobile 



50 



3 

device and a synchronization server. The methods of 
the present invention may be performed by either syn- 
chronizing computer system (e.g., by either the mobile 
device or the synchronization server). 
[0011] It is first determined that a data item is to be 
synchronized. This may be accomplished in response 
to a user-issued instruction , or in response to a message 
from the other device indicating that the data item ought 
to be synchronized. The determination may also have 
been made by consulting a flexible set of rules that are 
dictated by a network administrator of the synchroniza- 
tion server as well as by the mobile device user. 
[0012] Once it has been determined that a data item 
is to be synchronized, the computer system identifies 
the available synchronization mechanisms, and then 
once again consults with the flexible rules to determine 
which of the available synchronization mechanisms to 
use. The computer system then synchronizes using the 
selected synchronization mechanism. 
[0013] The flexible selection rules may be set and 
changed by a network administrator and by a user of the 
mobile device. The flexible selection rules take into con- 
sideration the value of the data, the economic cost of 
synchronization, the security of the synchronization 
mechanism, and the security of the mobile device. Ac- 
cordingly, it is much less likely that the flexible rules will 
allow for highly sensitive data to be shared with an in- 
secure device or over an insecure synchronization 
channel. Likewise, it is much less likely that a less val- 
uable item of data will be synchronized over an expen- 
sive network. 

[0014] The synchronization rules also take into con- 
sideration the location of the mobile device and user. If 
none of the available synchronization mechanisms are 
selectable based on the flexible rules, then the synchro- 
nization may be delayed, and then the synchronization 
mechanism may be repeatedly reevaluated until there 
is a selectable synchronization mechanism. 
[0015] Should synchronization occur, and later a se- 
curity condition for synchronization changes, then the 
effects of the synchronization may be reversed. For ex- 
ample, suppose that the flexible rules indicate that syn- 
chronization to a mobile device is proper since the mo- 
bile device has configuration settings in which a screen 
saver is activated after five minutes of non-use, and that 
a user password is required to restore the device each 
time the screen saver is activated. Later, suppose the 
user deactivates the screen saver. The synchronization 
server may query the mobile device to determine that 
the screen saver has been deactivated. Since the orig- 
inal conditions for synchronization are no longer met, 
the synchronization server may issue an instruction to 
erase the data item from the mobile device, or (if change 
tracking is enabled) then may instruct the mobile device 
to roll back the data item to its pre-synchronization state. 
[0016] Accordingly, the principles of the present in- 
vention perform synchronization in a much more appro- 
priate manner considering the surrounding circum- 



4 

stances. In addition, the effects of synchronization may 
be reversed if security changes so require. Furthermore, 
the network administrator (and the mobile user) has 
much more control over when synchronization occurs. 
5 This results in a more secure, cost effective, and effi- 
cient synchronization design. 

[0017] Additional features and advantages of the in- 
vention will be set forth in the description that follows, 
and in part will be obvious from the description, or may 

10 be learned by the practice of the invention. The features 
and advantages of the invention may be realized and 
obtained by means of the instruments and combinations 
particularly pointed out in the appended claims. These 
and other features of the present invention will become 

15 more fully apparent from the following description and 
appended claims, or may be learned by the practice of 
the invention as set forth hereinafter. 

BRIEF DESCRIPTION OF THE DRAWINGS 

20 

[0018] In order to describe the manner in which the 
above-recited and other advantages and features of the 
invention can be obtained, a more particular description 
of the invention briefly described above will be rendered 

25 by reference to specific embodiments thereof which are 
illustrated in the appended drawings. Understanding 
that these drawings depict only typical embodiments of 
the invention and are not therefore to be considered to 
be limiting of its scope, the invention will be described 

30 and explained with additional specificity and detail 
through the use of the accompanying drawings in which: 
[0019] Figure 1 illustrates an example of a telephonic 
device that may implement the principles of the present 
invention. 

35 [0020] Figure 2 illustrates an example network envi- 
ronment that provides a suitable operating environment 
for the present invention. 

[0021] Figure 3 illustrates a flowchart of a method for 
flexibly synchronizing in accordance with the present in- 
*o vention. 

DETAILED DESCRIPTION OF THE PREFERRED 
EMBODIMENTS 

45 [0022] The present invention extends to systems, 
methods and computer program products for perform- 
ing synchronization in a flexible manner. Two computer 
systems in a network each have a local store that con- 
tains a copy of a data item that is to be synchronized 

so between the two computer systems. One of the compu- 
ter systems may be, for example, a mobile device while 
the other may be a synchronization server. In order to 
determine whetherto synchronize a data item, and what 
synchronization mechanism to use, one of the computer 

55 systems references a flexible set of rules that may be 
influenced by instructions from a network administrator 
or a mobile device user. 

[0023] The flexible set of rules takes into considera- 
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tion the value of the data, the cost associated with syn- 
chronization, the security of the synchronization mech- 
anisms, the security of the mobile device, and/or the lo- 
cation of the mobile device and user in dictating whether 
and how to synchronize. If synchronization occurs, and 
the security conditions for synchronization are later not 
satisfied (e.g., the mobile device's configuration settings 
have been changed to make the device much less se- 
cure), the effects of the synchronization may be re- 
versed. In essence, the principles of the present inven- 
tion synchronize the appropriate data onto the appropri- 
ate device in a manner appropriate to maximize the mo- 
bile user's value, benefit, and user experience while at 
the same time minimize the cost and time of the trans- 
action, and preserving synchronization security. 
[0024] The embodiments of the present invention 
may comprise a general-purpose or special-purpose 
computer system including various computer hardware 
components, which are discussed in greater detail be- 
low. Embodiments within the scope of the present in- 
vention also include computer-readable media for car- 
rying or having computer-executable instructions or da- 
ta structures stored thereon. Such computer-readable 
media may be any available media, which is accessible 
by a general-purpose or special-purpose computer sys- 
tem. By way of example, and not limitation, such com- 
puter-readable media can comprise physical storage 
media such as RAM, ROM, EPROM, CD-ROM or other 
optical disk storage, magnetic disk storage or other 
magnetic storage devices, or any other media which can 
be used to carry or store desired program code means 
in the form of computer-executable instructions or data 
structures and which may be accessed by a general- 
purpose or special-purpose computer system. 
[0025] When information is transferred or provided 
over a network or another communications connection 
(either hardwired, wireless, or a combination of hard- 
wired or wireless) to a computer system or computer de- 
vice, the connection is properly viewed as a computer- 
readable medium. Thus, any such connection is prop- 
erly termed a computer-readable medium. Combina- 
tions of the above should also be included within the 
scope of computer-readable media. Computer-execut- 
able instructions comprise, for example, instructions 
and data which cause a general-purpose computer sys- 
tem or special-purpose computer system to perform a 
certain function or group of functions. 
[0026] In this description and in the following claims, 
a "computer system" is defined as one or more software 
modules, one or more hardware modules, or combina- 
tions thereof, that work together to perform operations 
on electronic data. For example, the definition of com- 
puter system includes the hardware components of a 
personal computer, as well as software modules, such 
as the operating system of the personal computer. The 
physical layout of the modules is not important. A com- 
puter system may include one or more computers cou- 
pled via a computer network. Likewise, a computer sys- 



tem may include a single physical device (such as a mo- 
bile phone, Personal Digital Assistant "PDA", laptop 
computer, a tablet PC) where internal modules (such as 
a memory and processor) work together to perform op- 

5 erations on electronic data. 

[0027] Those skilled in the art will appreciate that the 
invention may be practiced in network computing envi- 
ronments with many types of computer system config- 
urations, including personal computers, laptop compu- 

10 ter, hand-held devices, multi-processor systems, micro- 
processor-based or programmable consumer electron- 
ics, network PCs, minicomputers, mainframe comput- 
ers, mobile telephones, PDAs, pagers, and the like. The 
invention may also be practiced in distributed computing 

is environments where local and remote computer sys- 
tems, which are linked (either by hardwired links, wire- 
less links, or by a combination of hardwired or wireless 
links) through a communication network, both perform 
tasks. In a distributed computing environment, program 

20 modules may be located in both local and remote mem- 
ory storage devices. 

[0028] Figure 1 and the following discussion are in- . 
tended to provide a brief, general description of a suit- 
able computing environment in which the invention may 

25 be implemented. Although not required, the invention 
will be described in the general context of computer-ex- 
ecutable instructions, such as program modules, being 
executed by computer systems. Generally, program 
modules include routines, programs, objects, compo- 

30 nents, data structures, and the like, which perform par- 
ticulartasks or implement particular abstract data types. 
[0029] With reference to Figure 1 , a suitable operating 
environment for the principles of the invention includes 
a general-purpose computer system in the form of a mo- 

35 bile device 1 00. The mobile device 1 00 includes a user 
interface 101 for allowing a user to input information 
through an input user interface 103, and to review infor- 
mation presented via an output user interface 102. For 
example, the output user interface 102 includes a 

40 speaker 1 04 for presenting audio information to the us- 
er, as well as a display 105 for presenting visual infor- 
mation to the user. The mobile device 100 may also 
have an antenna 1 09. 

[0030] The input user interface 1 03 may include a mi- 
45 crophone 1 06 for translating audio information into elec- 
tronic form. In addition, the input user interface 1 03 in- 
cludes dialing controls 107 represented by 12 buttons 
through which a user may enter information. Input user 
interface 1 03 also includes navigation control buttons 
50 108 that assist the user in navigating through various 
entries and options listed on display 105. 
[0031] Although user interface 101 has the appear- 
ance of a mobile telephone, the unseen features of user 
interface 1 01 may allow for complex and flexible gener- 
55 al-purpose processing capabilities. For example, mobile 
device 1 00 also includes a processor 1 1 1 and a memory 
112 that are connected to each other and to the user 
interface 101 via a bus 1 1 0. Memory 112 generally rep- 
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resents a wide variety of volatile and/or non-volatile 
memories and may include types of memory previously 
discussed. However, the particular type of memory used 
in mobile device 100 is not important to the present in- 
vention. Mobile device 100 may also include mass stor- 
age devices (not shown) similar to those associated with 
other general-purpose computer systems. 
[0032] Program code means comprising one or more 
program modules may be stored in memory 1 1 2 or other 
storage devices as previously mentioned. The one or 
more program modules may include an operating sys- 
tem 113, one or more application programs 114, other 
program modules 1 1 5, and program data 116. 
[0033] While Figure 1 represents a suitable operating 
environment for the present invention, the principles of 
the present invention may be employed in any system 
that is capable of, with suitable modification if neces- 
sary, implementing the principles of the present inven- 
tion. The environment illustrated in Figure 1 1s illustrative 
only and by no means represents even a small portion 
of the wide variety of environments in which the princi- 
ples of the present invention may be implemented. 
[0034] Figure 2 illustrates a network environment 200 
in accordance with the present invention. The network 
environment 200 includes a client computer system 210 
(also called herein "client 210 tt ) and a server computer 
system 220 (also called herein "server 220°) that are 
"network connectable" to each other over at least a wire- 
less network 230. In this description and in the claims, 
"network connectable" means being "network connect- 
ed" or having the ability to establish a permanent and/ 
or temporary network connection with each other. In this 
description and in the claims, being "network connect- 
ed" over a network means having the ability to commu- 
nicate with each other over at least the network among 
possibly other networks as well. 
[0035] The client 210 may be, for example, the mobile 
device 1 00 described with respect to Figure 1 , although 
the client 210 may be any general purpose and/or spe- 
cial purpose processing system. The client 210 has a 
local store 211 that may be memory 112 in the case of 
the mobile device 100. Local store 211 may hold a va- 
riety of different document types including image files, 
sound files, executable files, word processing docu- 
ment, spreadsheet documents, or the like. For clarity, 
the local store 21 1 is illustrated as containing a single 
data item 212 that is under consideration for synchroni- 
zation. The data item may be any structured or unstruc- 
tured data. 

[0036] The client 21 0 also includes a networking mod- 
ule 21 3 configured to send and receive communications 
over the wireless network 230 to and from the server 
220. Such a networking module may typically be em- 
ployed within the operating system of the client 210. A 
processing module 214 of the client 210 is configured 
to coordinate access to the data item 21 2 from the local 
store, and to use of the networking module 214 so as to 
perform client operations in accordance with the princi- 



8 

pies of the present invention. 

[0037] The server 220 may be, for example, a com- 
puter system that runs a synchronization server that 
synchronizes with a number of wireless devices over the 

5 wireless network 230. However, the server 220 may be 
any general purpose and/or special purpose processing 
system. The server 220 also has a local store 221 that 
stores a data item 222. The data item 222 at the server 
220 and the data item 21 2 at the client 21 0 are versions 

10 of the same data item. At synchronization, both of these 
data items are identical. However, between synchroni- 
zations, changes may be made to one version, without 
them being immediately propagated to the other ver- 
sion. 

15 [0038] The server 220 also includes a networking 
module 223 configured to send and receive communi- 
cations over the network 230 to and f rorh the client 21 0 
as well as potentially other clients that are not shown for 
clarity. A processing module 224 of the server 220 is 

20 configured to coordinate access to the local store 221 , 
and to use the networking module 224 so as to perform 
server operations in accordance with the principles of 
the present invention. 

[0039] In one embodiment, the client 21 0 is a mobile 

25 device while the server 220 is a synchronization server 
that provides synchronization services to the mobile de- 
vice. Although the principles of the present invention is 
not limited to this embodiment, the following will fre- 
quently refer to the embodiment in which the client 210 

30 is a mobile device and the server 220 is a synchroniza- 
tion server. The synchronization server may be a service 
offered within a corporate network or other common 
sphere of trust protected by a firewall other security 
mechanisms from the general public. The mobile device 

35 may sometimes be within the corporate network, and 
may other times be far outside of the corporate network. 
However, there is no requirement that the synchroniza- 
tion server be within a corporate network. The synchro- 
nization server may be, for example, implemented as 

40 an Internet service. 

[0040] Figure 3 illustrates a flowchart of a method 300 
for performing synchronization in a flexible manner con- 
sidering the then-existing circumstances. The method 
determines whether, how, and when to synchronize a 

45 particular data item by consulting a flexible set of rules 
that may be set by a user of one of the computer sys- 
tems, and possible overwritten as dictated by a network 
administrator. It should be noted that the method 300 
may be performed by either the client 21 0 (e.g., a mobile 

so device) or the server 220 (e.g., a synchronization serv- 
er). 

[0041] The flexible set of rules balance the economic 
value of the data with the economic cost associated with 
synchronization. The rules also consider the security of 
55 the synchronization mechanism as well as the security 
of the computer system with which synchronization is 
desired. The rules balance the security risk associated 
with synchronization with the value in having access to 
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synchronized data. The security rules may also consider 
the location of the mobile user and/or device in deter- 
mining whether to synchronize. 
[0042] The value of the data may be determined by 
user preferences and/or by a network administrator. For 
example, to a user, spam e-mails will typically be less 
important to synchronize. However, e-mails from partic- 
ular senders (e.g., clients, bosses, business partners, 
spouses, or the like) may be of greater value to a user. 
E-mails that contain the words "coin" or "penny" may be 
of higher value to a penny collector than e-mails that do 
not contain such words. To a network administrator, con- 
tacts stored in a business folder may be more important 
than contacts stored in a personal folder. While these 
are just examples, the examples demonstrate that there 
is a wide variety of criteria from which a value of a data 
item may be derived based on user preferences and net- 
work administrator dictates. 

[0043] Referring back to Figure 3, the method 300 be- 
gins by consulting the set of flexible selection rules (act 

301 ) . Based on this consultation, It is determined wheth- 
er or not to synchronize the data item (decision block 

302) . For example, the network administrator or mobile 
device user may have determined that data items must 
have at least a predetermined value in order to be syn- 
chronized. Spam, for example, might fall below that 
threshold. If the data item is not to be synchronized (NO 
in decision block 302), then the method 300 simply ends 
without synchronization. 

[0044] If the data item is to be synchronized based on 
the consultation with the flexible set of rules (YES in de- 
cision block 302), then the method proceeds to a step 
for flexibly using an appropriate synchronization mech- 
anism considering the then-existing circumstances 
(step 303). This may include any corresponding acts for 
accomplishing this functional result-oriented step. How- 
ever, in the illustrated embodiment, the step 303 in- 
cludes corresponding acts 304, 305, 306 and 307. 
[0045] Note that in the illustrated embodiment, wheth- 
er to synchronize is determined by consultation with a 
set of rules. This determination may also be made by 
receiving an instruction from the synchronization server, 
or by receiving a user-issued instruction from the mobile 
device user. There is no requirement that the flexible set 
of rules be consulted as to whether the data item is to 
be synchronized. 

[0046] Once it has been determined that a data item 
is to be synchronized, the method identifies which syn- 
chronization mechanisms of a number of synchroniza- 
tion mechanisms are currently available (act 304). For 
example, a mobile device may be capable of synchro- 
nizing with a synchronization server using a number of 
synchronization mechanisms such as GSM, GPRS, 
Bluetooth, 802.11a, 802.11b (WiFi), or the like. Howev- 
er, it may be that the mobile device in not within an 
802.11 a or 802.11 b hot spot, or within a Bluetooth net- 
work range. Accordingly, the only available synchroni- 
zation mechanisms would be GSM and GPRS in this 



example. Note that although the determination of avail- 
able synchronization mechanisms (act 304) is illustrated 
as occurring after the determination as to whether to 
synchronize the data item, the identification of the avail- 
5 able synchronization mechanisms may occur before de- 
termining that any particular data item is to be synchro- 
nized. For example, the mobile device or the synchro- 
nization server may constantly or periodically reevalu- 
ate the available synchronization mechanisms. Wheth- 
10 er synchronization mechanisms are available may even 
be a consistently updated configuration setting. 
[0047] The method also consults the set of flexible se- 
lection rules (act 305) to select one of the synchroniza- 
tion mechanisms (act 306). For example, the flexible se- 
ts lection rules may not only be used to identify the value 
of the data, but may also be used to determine the eco- 
nomic costs associated synchronizing the data item 
over each synchronization mechanism. For example, 
analog dialup over a Public Switched Telephone Net- 
20 work (PSTN) network or GSM is a relatively slow way 
of synchronizing, but is currently typically less expen- 
sive than synchronization over a GPRS network. If the 
data item was relatively small, synchronization may be 
more appropriate over a GSM network since it might not 
25 take long even over a lower bandwidth connection to 
synchronize the data item. 

[0048] Synchronization costs may also depend on the 
time of day, or the day of the week. Accordingly, the flex- 
ible rules may also consider the time of day, and day of 

30 the week in selecting an appropriate network. If the 
costs associated with a particular synchronization 
mechanism are to change shortly, then the synchroni- 
zation may be delayed a short while so as to fall into a 
less expensive cost structure. 

35 [0049] The flexible selection rules also may consider 
the security of the network associated with the synchro- 
nization mechanisms. Some networks are inherently 
more secure than others. For example, the mobile de- 
vice may be within the same trusted corporate network 

40 as the synchronization server. If remotely connected, 
the security of the connection (e.g., Virtual Private Net- 
work "VPN", Short Message Service "SMS", Secure 
Sockets Layer "SSL", or direct Remote Access Services 
M RAS") may be evaluated to determine how difficult it 

45 would be for eavesdropping or redirection of the con- 
nection. 

[0050] The flexible selection rules may also consider 
the security of the mobile device with which synchroni- 
zation may occur. The mobile device may have some 

so rigid security attributes inherent in the device and in the 
associated operating system itself, as well as flexible se- 
curity attributes that may be changed by a user. For ex- 
ample, a WINDOWS XP® enabled laptop computer is 
generally considered more secure than most Personal 

55 Digital Assistants (PDAs). A network administrator may 
thus dictate to the flexible selection rules that synchro- 
nization of confidential data items may only be made to 
mobile laptops and not to PDAs. 



6 



11 



EP 1 338 968 A2 



12 



[0051 ] The flexible selection rules may also consider 
where the mobile device or user is in determining a syn- 
chronization mechanism. For example, if a user Is out- 
side of a corporate network, but heading towards an 
802. 1 1 b hot spot with a secure high-speed VPN connec- 
tion to the corporate network, the synchronization may 
be delayed until the user enters the hot spot, wherein 
synchronization may occur with great speed and secu- 
rity and with very little cost. 

[0052] Also, suppose the user is working on their local 
computer within the corporate network. Now suppose 
the mobile device is, by chance, not connected to the 
corporate network but is with the user. The synchroni- 
zation server may send a notification to the user's local 
computer that there is important information to synchro- 
nize. The user may then connect the device to the low 
cost / high speed corporate network and then synchro- 
nize. 

[0053] Once an appropriate synchronization mecha- 
nism is selected (act 306), then the selected synchroni- 
zation mechanism is used to synchronize the data item 
(act 307). Once synchronized, the synchronization serv- 
er may constantly or periodically reevaluate whether 
any security conditions for synchronization have 
changed such that synchronization is no longer appro- 
priate. For example, suppose that the flexible rules in- 
dicate that synchronization to a mobile device is proper 
since the mobile device has configuration settings in 
which a screen saver is activated after five minutes of 
non-use, and that a user password is required to restore 
the device each time the screen saver is activated. Lat- 
er, suppose the user deactivates the screen saver. The 
synchronization server may query the mobile device to 
determine that the screen saver has been deactivated. 
Since the original security conditions for synchroniza- 
tion are no longer met, the synchronization server may 
issue an instruction to erase the data item from the mo- 
bile device, or (if change tracking is enabled) may in- 
struct the mobile device to roll back the data item to its 
pre-synchronization state. Alternatively, the synchroni- 
zation server may also be setup to change the devices 
screen saver setting back to the secure mode. 
[0054] The synchronization may occur automatically 
based on the consultation with the set of flexible selec- 
tion rules. Alternatively or in addition, the synchroniza- 
tion server may notify the mobile device user that there 
is an important item to synchronize and then prompt the 
user as to whether to synchronize. The user of the mo- 
bile device may also indicate that synchronization is de- 
sired, and then the synchronization server might then 
determine which data items are appropriate to synchro- 
nize. The user may also manually synchronize by se- 
lecting particular data items to synchronize. 
[0055] Some of the advantages of the present inven- 
tion may be illustrated by the following scenario involv- 
ing a fictional stock broker named "Michelle 1 '. Having ac- 
cess to up-to-date information is very important to 
Michelle. The information that she is interested is locat- 



ed in her corporate network in various server locations. 
She has setup her synchronization server to gather the 
appropriate data from the appropriate corporate servers 
and to update her device every morning at 5:00 AM 

s when the data rates are lowerwith important information 
that she needs to review before she arrives at work. To 
do this, she may have created a "weekday morning" 
sync group that contains: Inbox, Tasks, Calendar, Con- 
tacts, high priority action items from her Line-Of-Busi- 

10 ness (LOB) server, and articles from the Wall Street 
Journal. This allows Michelle to review important infor- 
mation and plan her day while she eats breakfast and 
rides the train to work. 

[0056] When Michelle gets to work, she tethers her 
*5 mobile phone to her computer and the device does a 
complete sync. For example, she created a "in-the-of- 
fice" sync group that contains: Inbox, Tasks, Calendar, 
Contacts, important information about her customers 
from the company's LOB server, the latest research in- 
formation from the company's trading system, and the 
updates her Wall Street Journal cache. Some of the data 
items in the "in-the-office" sync group are highly confi- 
dential business-related items. The office's network ad- 
ministrator has set a global rule that indicates that such 
data items should not be synchronized to a mobile 
phone, but may only be synchronized with laptop or 
desktop computers with an encrypted file system. Ac- 
cordingly, although most of the data items in the "in-the- 
office" sync group are synchronized with Michelle's mo- 
bile phone, the highly confidential data items are not. 
This balances Michelle's need to access information 
with the office's need to secure confidential information. 
[0057] Michelle undocks her phone and proceeds to 
do various work items during the morning. She is sched- 
uled to meet an important customer named "Tom" for 
lunch. Her Personal Information Management (PIM) 
server, her sync server and the LOB server are offering 
her an integrated solution. When her meeting reminder 
pops up on her PC it also informs her that Tom has some 
account activity that morning and that she should dock 
her phone to get this new activity synced to her phone. 
Michelle docks her phone and Tom's information is up- 
dated. During the cab ride, Michelle reviews Tom's ac- 
count information and activity. During lunch, Tom is im- 
pressed how knowledgeable Michelle is about his ac- 
count and activity. 

[0058] On her way home from work, Michelle decides 
she would like to go out to dinner and a movie. On her 
device, she selects the option to sync the group "week- 
end personal items" and the individual item restaurant 
reviews. Her device then syncs movie times, her per- 
sonal calendar, e-mail, and the weekend weather and 
restaurant reviews. She finds a movie that she would 
like to see near her office, finds a review of a new res- 
taurant near the movie. She then calls a friend and 
makes a date. 

[0059] Accordingly, the principles of the present in- 
vention allow for an intelligence determination of wheth- 
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er, when and how to synchronize by consulting a flexible 
set of rules that are derived from input from a network 
administrator as well as the user. The flexible set of rules 
takes into consideration the value of the data, the eco- 
nomic cost of synchronization, and/or the security of the s 
synchronization mechanjsms and device to which syn- 
chronization is proposed. Accordingly, synchronization 
is made in a more intelligent manner. 
[0060] The present invention may be embodied i n oth- 
er specific forms without departing from its spirit or es- 10 
sential characteristics. The described embodiments are 
to be considered in all respects only as illustrative and 
not restrictive. The scope of the invention is, therefore, 
indicated by the appended claims rather than by the 
foregoing description. All changes, which come within is 
the meaning and range of equivalency of the claims, are 
to be embraced within their scope. 



Claims 20 



1. 



A method for synchronizing data stores in a network 
that includes a first computer system having a first 
data store and second computer system having a 
second data store, the method for synchronizing the 25 
first and second data stores in a flexible manner 
considering the circumstances that exist at the time 
of synchronization, the method comprising the fol- 
lowing: 



an act of the first computer system determining 
that a data item is to be synchronized; and 
a step for flexibly using an appropriate synchro- 
nization mechanism considering the then-exist- 
ing circumstances. 



30 



35 



The method of claim 1 , wherein the step for flexibly 
using an appropriate synchronization considering 
the then-existing circumstances comprises the fol- 
lowing: 40 



an act of the first computer system identifying 
which of the plurality of synchronization mech- 
anisms are available to use for synchronization; 
an act of the first computer system consulting 
a set of flexible selection rules to select one of 
the available synchronization mechanisms; 
and 

an act of the first computer system using the 
selected synchronization mechanism to syn- 
chronize the data item with the second compu- 
ter. 



3. 



A method for synchronizing data stores in a network 
that includes a first computer system having a first 
data store and second computer system having a 
second data store, the method for synchronizing the 
first and second data stores in a flexible manner 
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50 
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considering the circumstances that exist at the time 
of synchronization, the method comprising the fol- 
lowing: 

an act of the first computer system determining 
whether to synchronize a data item by consult- 
ing a set of flexible selection rules; and 
an act of the first computer system synchroniz- 
ing the data item with the second computer if 
the first computer system determines that the 
data item is to be synchronized. 

The method of claim 3, wherein the act of the first 
computer system synchronizing the data item with 
the second computer comprises the following: 

an act of the first computer system identifying 
which of a plurality of synchronization mecha- 
nisms are available to use for synchronization; 
an act of the first computer system consulting 
a set of flexible selection rules to select one of 
the available synchronization mechanisms; 
and 

an act of the first computer system using the 
selected synchronization mechanism to syn- 
chronize the data item with the second compu- 
ter. 

The method of claim 2 or 4, wherein the act of the 
first computer system consulting a set of flexible se- 
lection rules comprises the following: 

an act of the first computer system selecting 
one of the available synchronization mecha- 
nisms without synchronous intervention from a 
user of the first computer system. 

The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the day of the week. 

The method of claim 2 or 4, wherein the act of con- 
suiting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the value of the data. 

The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 
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an act of selecting the synchronization mecha- 
nism at least based on the economic cost of us- 
ing a network associated with the synchroniza- 
tion mechanism. 

9. The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the security of a network 
associated with the synchronization mecha- 
nism. 

10. The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the security of the first 
computer system. 

1 1 . The method of claim 1 0, wherein the act of selecting 
the synchronization mechanism at least based on 
the security of the first computer system comprises 
the following: 

an act of selecting the selecting the synchroni- 
zation mechanism at least based on the secu- 
rity features inherent in devices of the same 
type as the first computer system 

12. The method of claim 10, wherein the act of selecting 
the synchronization mechanism at least based on 
the security of the first computer system comprises 
the following: 

an act of selecting the selecting the synchroni- 
zation mechanism at least based on current se- 
curity settings of the first computer system 

13. The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the location of the user 
of the first computer system. 

14. The method of claim 2 or 4, wherein the act of con- 
sulting a set of flexible selection rules to select one 
of the available synchronization mechanisms com- 
prises the following: 

an act of determining that there are no current 
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synchronization mechanisms that are selecta- 
ble based on the flexible set of rules; 
an act of reevaluating the flexible selection 
rules at a later time; and 
an act of repeating the reevaluation until at 
least one of the available synchronization 
mechanisms is selectable based on the flexible 
selection rules. 

15. The method of one of claims 1 to 14, wherein the 
first computer system is a synchronization server, 
and the second computer system is a mobile de- 
vice. 

16. The method of one of claims 1 to 14, wherein the 
first computer system is a mobile device, and the 
second computer system is a synchronization serv : 
er. 

17. The method of claim 1 6, wherein the act of the first 
computer system determining that a data item is to 
be synchronized comprises the following: 

an act of the mobile device determining on its 
own that the data item is to be synchronized. 

18. The method of claim 1 6, wherein the act of the first 
computer system determining that a data item is to 
be synchronized comprises the following: 

an act of the mobile device receiving a user- 
issued instruction to synchronize the data item. 

19. The method of claim 1 6, wherein the act of the first 
computer system determining that a data item is to 
be synchronized comprises the following: 

an act of the mobile device receiving a signal 
from the synchronization server that represents 
to the mobile device that the data item is to be 
synchronized. 



20. The method of one of claims 1 to 19, wherein the 
second data store is incorporated within a common 

& sphere of trust. 

21. The method of claim 20, wherein the second data 
store is incorporated within a corporate network. 

so 22. The method of one of claims 1 to 21 , wherein the 
second data store is incorporated within the Inter- 
net. 

23. The method of one of claims 1 to 22, wherein the 
55 mobile device comprises a mobile telephone. 

24. The method of one of claims 1 to 23, wherein the 
mobile device comprises a personal digital assist- 
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ant. 

25. The method of one of claims 1 to 24, wherein the 
mobile device comprises a laptop computer. 

26. The method of one of claims 1 to 25, wherein the 
mobile device comprises a tablet personal compu- 
ter. 

27. The method of one of claims 1 to 26, wherein the 
plurality of synchronization mechanisms comprises 
at least one wireless synchronization mechanism. 

28. The method of claim 27, wherein the at least one 
wireless synchronization mechanism uses a GPRS 
network. 

29. The method of claim 27, wherein the at least one 
wireless synchronization mechanism uses an 
802.11a network. 

30. The method of claim 27, wherein the at least one 
wireless synchronization mechanism uses an 802. 1 
1 network. 

31. The method of claim 27, wherein the at least one 
wireless synchronization mechanism uses Blue- 
tooth network. 

32. The method of claim 27, wherein the at least one 
wireless synchronization mechanism uses a cellu- 
lar network. 

33. The method of one of claims I to 32, wherein the 
plurality of synchronization mechanisms comprises 
an analog dialup synchronization mechanism. 

34. The method of one of claims 1 to 33, wherein the 
plurality of synchronization mechanisms comprises 
a Virtual Private Network (VPN). 

35. The method of one of claims 1 to 34, further com- 
prising the following: 

an act of receiving instructions to change the 
set of flexible selection rules; and 
an act of changing the set of flexible selection 
rules in response to the instruction. 

36. The method of daim 35, wherein the act of receiving 
instructions to change the set of flexible selection 
rules comprises the following: 

an act of receiving instructions to change the 
set of flexible selection rules from a user of the 
first computer system. 

37. The method of claim 35, wherein the act of receiving 



instructions to change the set of flexible selection 
rules comprises the following: 

an act of receiving instructions to change the 
5 set of flexible selection rules from an agent of 

the second computer system. 

38. The method of claim 37, wherein the act of receiving 
instructions to change the set of flexible selection 

w rules from an agent of the second computer system 
comprises the following: 

an act of receiving instructions to change the 
set of flexible selection rules from a network ad- 
15 ministrator of a trusted network that includes 

the second computer system. 

39. The method of claim 38, further comprising the fol- 
lowing: 

20 

an act of receiving instructions to change the 
set of flexible selection rules from a user. 

40. Themethod of claim 39, wherein the act of changing 
25 the set of flexible selection rules in response to the 

instruction, comprises the following: 

an act of fulfilling the instructions received from 
the network administrator of the second com- 
30 puter system to the extent that there is a conflict 

between the instructions received from the net- 
work administrator of the second computer sys- 
tem and the instructions received from the user 
of the first computer system . 

35 

41. The method of one of claims 1 to 40, wherein the 
act of determining that a data item is to be synchro- 
nized comprises the following: 

40 an act of the first computer system receiving a 

notification from the second computer system 
that a data item is available to synchronize; 
an act of the first computer system notifying the 
user of the availability of the data item; and 

45 an act of receiving a user-instruction to syn- 

chronize the data item. 

42. The method of one of claims 1 to 41, wherein the 
act of consulting a set of flexible selection rules to 

50 select one of the available synchronization mecha- 
nisms comprises the following: 

an act of selecting the synchronization mecha- 
nism at least based on the time of day. 

55 

43. The method of one of claims 1 to 42, further com- 
prising the following: 
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after using the selected synchronization mech- 48. The network system of claim 47, adapted to perform 
anism to synchronize the data item, an act of the method of one of claims 1 to 44. 

determining that the conditions for synchroni- 
zation are no longer met in light of the flexible 
selection rules; and 5 
an act of automatically reversing the synchro- 
nization if it has been determined that the con- 
ditions for synchronization are no longer met. 

44. The method of one of claims 1 to 43, wherein the 10 
act of the first computer system determining that a 
data item is to be synchronized comprises the fol- 
lowing: 

an act of the first computer system determining 15 
whether to synchronize a data item by consult- 
ing a set of flexible selection rules; and 
an act of the first computer system synchronize 
the data item with the second computer if the 
first computer system determines that the data 20 
item Is to be synchronized. 

45. A computer program product comprising one or 
more computer-readable media having stored ther- 
eon computer-executable instructions for perform- 25 
ing the method of one of claims 1 to 44. 

46. The computer program product of claim 45, wherein 
the one or more computer-readable media are 
physical storage media. 30 

47. A network system comprising the following: 

a synchronization server comprising a data 
store, a networking module, and a processing 35 
module configured to access the data store as 
well as communicate over a network using the 
networking module; 

a mobile device having a data store, a network- 
ing module, and a processing modules config- 40 
ured to access the data store of the mobile de- 
vice as well as communicate with the synchro- 
nization server over the network using the net- 
working module of the mobile device, the 
processing module of the mobile device or the 45 
synchronization server configured to perform 
the following: 

determine that a data item is to be synchro- 
nized; 50 
identify which of the plurality of synchroni- 
zation mechanisms are available to use for 
synchronization; 

consult a set of flexible selection rules to 
select one of the available synchronization 55 
mechanisms; and 

use the selected synchronization mecha- 
nism to synchronize the data item. 
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